Known Vulnerabilities for products from Zyxel

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Zyxel".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-35035 A cleartext storage of sensitive information vulnerability in the Zyxel NBG6604 firmware could allow a remote, authenticated ... 6.5 - MEDIUM 2021-12-29 2022-01-07
CVE-2021-35034 An insufficient session expiration vulnerability in the CGI program of the Zyxel NBG6604 firmware could allow a remote attack... 9.1 - CRITICAL 2021-12-29 2022-01-07
CVE-2021-35033 A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured p... 7.8 - HIGH 2021-11-23 2021-12-01
CVE-2021-35032 A vulnerability in the 'libsal.so' of the Zyxel GS1900 series firmware version 2.60 could allow an authenticated local user t... 7.8 - HIGH 2021-12-28 2022-01-07
CVE-2021-35031 A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, whi... 8 - HIGH 2021-12-28 2022-01-07
CVE-2021-35030 A vulnerability was found in the CGI program in Zyxel GS1900-8 firmware version V2.60, that did not properly sterilize packet... 4.3 - MEDIUM 2021-07-26 2021-08-13
CVE-2021-35029 An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.... 9.8 - CRITICAL 2021-07-02 2021-07-08
CVE-2021-35028 A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, l... 7.8 - HIGH 2021-09-29 2021-10-02
CVE-2021-35027 A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker ... 7.5 - HIGH 2021-09-29 2021-10-02
CVE-2021-3297 On Zyxel NBG2105 V1.00(AAGU.2)C0 devices, setting the login cookie to 1 provides administrator access. 7.8 - HIGH 2021-01-26 2021-02-03
CVE-2020-29583 Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The passwo... 9.8 - CRITICAL 2020-12-22 2021-01-14
CVE-2020-29299 Certain Zyxel products allow command injection by an admin via an input string to chg_exp_pwd during a password-change action... 7.2 - HIGH 2020-12-27 2021-01-05
CVE-2020-28899 The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does not require authentication, which allows remote unauthe... 9.1 - CRITICAL 2021-03-16 2021-03-22
CVE-2020-25014 A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 t... 9.8 - CRITICAL 2020-11-27 2020-12-10
CVE-2020-24355 Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by insecure p... 9.8 - CRITICAL 2020-09-02 2020-09-11
CVE-2020-24354 Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by shell inje... 8.8 - HIGH 2020-08-31 2021-07-21
CVE-2020-20183 Insecure direct object reference vulnerability in Zyxel’s P1302-T10 v3 with firmware version 2.00(ABBX.3) and earlier allow... 7.5 - HIGH 2020-12-14 2021-07-21
CVE-2020-15348 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows use of live/CPEManager/AXCampaignManager/delete_cpes_by_ids?cpe_ids= for ev... 9.8 - CRITICAL 2020-06-26 2021-07-21
CVE-2020-15336 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /cnr requests. 7.5 - HIGH 2020-06-26 2020-08-25
CVE-2020-15335 Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /registerCpe requests. 7.5 - HIGH 2020-06-26 2020-08-25

Known software with vulnerabilities from Zyxel

Type Vendor Product Version
Operating
System
Zyxel2.00abbx.3-
Operating
System
ZyxelAccess Points Firmware-
HardwareZyxelAtp200-
Operating
System
ZyxelAtp200 Firmware4.31
HardwareZyxelAtp500-
Operating
System
ZyxelAtp500 Firmware4.31
HardwareZyxelAtp800-
Operating
System
ZyxelAtp800 Firmware4.31
ApplicationZyxelCloud Cnm Secumanager3.1.0
ApplicationZyxelCloudcnm Secumanager3.1.0
HardwareZyxelGs1900-10hp-
Operating
System
ZyxelGs1900-10hp Firmware-
HardwareZyxelGs1900-16-
Operating
System
ZyxelGs1900-16 Firmware-
Operating
System
ZyxelGs1900-24 Firmware-
HardwareZyxelGs1900-24e-
Operating
System
ZyxelGs1900-24e Firmware-
HardwareZyxelGs1900-24hp-
Operating
System
ZyxelGs1900-24hp Firmware-
HardwareZyxelGs1900-48-
Trademarks for Zyxel obtained from uspto.report
Mark Image Details
CLOUDENABLED
"CLOUDENABLED"
85879904
2013-03-19

Popular searches for "Zyxel"

Zyxel Networks, Your Networking Ally

www.zyxel.com

Zyxel Networks, Your Networking Ally Zyxel i g e Networks, a leader in delivering secure AI and cloud-powered business and home networking solutions.

www.zyxel.com/us/en/homepage.shtml www.zyxel.com/us/en cts.businesswire.com/ct/CT?anchor=www.zyxel.com%2Fus&esheet=52127253&id=smartlink&index=4&lan=en-US&md5=45a9dbc851cbc8773cfa3828bada623b&newsitemid=20191112005441&url=http%3A%2F%2Fwww.zyxel.com%2Fus cts.businesswire.com/ct/CT?anchor=Zyxel+Communications&esheet=52127253&id=smartlink&index=1&lan=en-US&md5=ee185ad448ad51347a51ed73660623ae&newsitemid=20191112005441&url=http%3A%2F%2Fwww.zyxel.com%2F www.us.zyxel.com www.zyxel.com/us www.zyxel.com/us/en/homepage.shtml Zyxel Computer network Cloud computing Solution Business Whitespace character Communication channel Computer security Web conferencing Home network Service provider Artificial intelligence ZAP (satellite television) Software Nebula (company) Website Product (business) Small and medium-sized enterprises E-commerce Software license